CVE-2025-30432: Buffer Overflow
Published Mar 31, 2025
·Updated
A logic issue was addressed with improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. A malicious app may be able to attempt passcode entries on a locked device and thereby cause escalating time delays after 4 failures.
Other sources
Accessibility. A logging issue was addressed with improved data redaction.
— Apple
AccountPolicy. This issue was addressed by removing the vulnerable code.
— Apple
Accounts. This issue was addressed with improved data access restriction.
— Apple
AirDrop. A permissions issue was addressed with additional restrictions.
— Apple
AirPlay. A null pointer dereference was addressed with improved input validation.
— Apple
Credit
Lehan Dilusha@@zafer, an anonymous researcher, Uri Katz (Oligo Security), Hossein Lotfi@@hosselot(Trend Micro Zero Day Initiative), Yutong Xiu@@Sou1gh0st, Denis Tokarev@@illusionofcha0s, Kirin@@Pwnrin, CVE-2025-24085, CVE-2024-9681, LFY@@secsys(Fudan University), Anonymous(Trend Micro Zero Day Initiative), Michael (Biscuit) Thomas - @social.lol@@biscuit, Ian Beer(Google Project Zero), CVE-2025-27113, CVE-2024-56171, Jimmy, Jax Reissner, Mickey Jin@@patch1t, @@RenwaX23, Bing Shi(Alibaba Group), Wenchao Li(Alibaba Group), Xiaolong Bai(Alibaba Group), Luyi Xing(Indiana University Bloomington), Andrew James Gonzalez, Richard Hyunho Im with routezero.security@@richeeta, YingQi Shi@@Mas0nShi(DBAppSecurity's WeBin lab), Minghao Lin@@Y1nKoc, Apple, Paul Bakker(ParagonERP), Gary Kwong, rheza@@ginggilBesel, Francisco Alonso@@revskills, Lukas Bernhard, Tashita Software Security, Xiangwei Zhang(Tencent Security YUNDING LAB), linjy(HKUS3Lab), chluo(WHUSecLab), Brendon Tiszka(Google Project Zero), Dominik Rath, Martin Kreichgauer(Google Chrome), Google Threat Analysis Group, wac(Trend Micro Zero Day Initiative), Andr.Ess, Wang Yu(Cyberserval), CVE-2024-48958, Alex Radocea(Supernetworks), Dave G.(Supernetworks), 风沐云烟@@binary_fmyy, Jonathan Bar Or@@yo_yo_yo_jbo(Microsoft), Alexia Wilson(Microsoft), Christine Fossaceca(Microsoft), Jaydev Ahire, Halle Winkler, Politepix theoffcuts.org, Alexander Heinrich@@Sn0wfreeze, SEEMOO, TU Darmstadt & Mathy Vanhoef@@vanhoefm, Jeroen Robben@@RobbenJeroen, DistriNet, KU Leuven, Vsevolod Kokorin (Slonser)(Solidlab), pattern-f@@pattern_F_, Bohdan Stasiuk@@bohdan_stasiuk, Ron Masas(BREAKPOINT), Syarif Muhammad Sajjad, Wojciech Regula(SecuRing), Claudio Bozzato(Cisco Talos), Francesco Benvenuto(Cisco Talos), Csaba Fitzl@@theevilbit(Kandji), Nolan Astrein(Kandji), Stephan Casas, Gergely Kalman@@gergely_kalman, Rodolphe BRUNETTI@@eisw0lf(Lupus Nova), Pietro Francesco Tirenna(Shielder), Davide Silvetti(Shielder), Abdel Adim Oisfi(Shielder), Manuel Fernandez (Stackhopper Security), Murray Mike(Trend Micro Zero Day Initiative), ABC Research s.r.o., Joseph Ravichandran@@0xjprx(MIT CSAIL), Kenneth Chew, Paweł Płatek (Trail(Bits), 风沐云烟@@binary_fmyy(Supernetworks), Minghao Lin@@Y1nKoc(Supernetworks), Diamant Osmani & Valdrin Haliti [Kosovë], dbpeppe, Solitechworld, Pwn2car, Mickey Jin@@patch1t(Kandji), (Kandji), Pedro Tôrres@@t0rr3sp3dr0, Noah Gregory (wts.dev), Arsenii Kostromin (0x3c3e), Dolf Hoegaerts, Michiel Devliegere, Dave G., zbleet(QI), Csaba Fitzl@@theevilbit(OffSec), 风沐云烟 (binary_fmyy)(DBAppSecurity's WeBin lab), Minghao Lin@@Y1nKoc(DBAppSecurity's WeBin lab), Zhongquan Li@@Guluisacat, Pedro José Pereira Vieito / pvieito.com)@@pvieito, PixiePoint Security, Andreas Hegenberg (folivora.AI GmbH), Zhongcheng Li(IES Red Team of ByteDance), mzzzz__, Muhammad Zaid Ghifari (Mr.ZheeV), Kalimantan Utara, Alhour@@NSAntoine, Florian Draschbacher, Dalibor Milanovic, Abhay Kailasia@@abhay_kailasia(C), Chi Yuan Chang(ZUSO ART), taikosoup, Junsung <3(Trend Micro Zero Day Initiative)
Affected Software
15 affected componentsFixes available
Apple iPadOS<17.7.6
Apple iPadOS>=18.0<18.4
Apple iPhone OS<18.4
Apple macOS>=13.0<13.7.5
Apple macOS>=14.0<14.7.5
Apple tvOS<18.4
Apple visionOS<2.4
Apple visionOS<2.4
2.4
Apple macOS Ventura<13.7.5
13.7.5
Apple tvOS<18.4
18.4
Apple iOS<18.4
18.4
Apple iPadOS<18.4
18.4
Apple macOS Sonoma<14.7.5
14.7.5
Apple iPadOS<17.7.6
17.7.6
Apple WatchOS<11.4
11.4
Event History
Mar 31, 2025
Data Sourced
via Apple·12:00 AM
DescriptionWeaknessAffected Software
Updated
via Apple·12:00 AM
DescriptionWeakness
Updated
via Apple·12:00 AM
Description
Updated
via Apple·12:00 AM
DescriptionWeaknessAffected Software
Updated
via Apple·12:00 AM
DescriptionAffected Software
Updated
via Apple·12:00 AM
Affected Software
CVE Published
via MITRE·10:22 PM
Data Sourced
via MITRE·10:22 PM
DescriptionWeakness
Data Sourced
via NVD·11:15 PM
DescriptionSeverityWeaknessAffected Software
Apr 1, 2025
Updated
via Apple·12:00 AM
DescriptionWeaknessAffected Software
Updated
via Apple·12:00 AM
DescriptionAffected Software
Parent advisories
This vulnerability appears in the following advisories.
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2025-24221
- CVE-2025-24131
- CVE-2025-24270
- CVE-2025-24271
- CVE-2025-24177
- CVE-2025-24179
- CVE-2025-24251
- CVE-2025-31197
- CVE-2025-24252
- CVE-2025-30445
- CVE-2025-24206
- CVE-2025-43205
- CVE-2025-24243
- CVE-2025-24244
- CVE-2025-24237
- CVE-2025-30429
- CVE-2025-24212
- CVE-2025-24215
- CVE-2025-24230
- CVE-2025-24085
- CVE-2025-24190
- CVE-2025-24211
- CVE-2025-31203
- CVE-2024-9681
- CVE-2025-30447
- CVE-2025-24210
- CVE-2025-30432
- CVE-2025-24203
- CVE-2025-27113
- CVE-2024-56171
- CVE-2025-24178
- CVE-2025-30426
- CVE-2025-30428
- CVE-2025-24173
- CVE-2025-24113
- CVE-2025-30471
- CVE-2025-30465
- CVE-2025-30433
- CVE-2025-24198
- CVE-2025-24205
- CVE-2025-24201
- CVE-2025-30425
- CVE-2025-24216
- CVE-2025-24264
- CVE-2025-30427
- CVE-2025-24209
- CVE-2024-54543
- CVE-2024-54534
- CVE-2024-54508
- CVE-2024-54502
- CVE-2025-31202
- CVE-2025-30430
- CVE-2025-24180
- CVE-2025-24163
- CVE-2025-31196
- CVE-2025-24182
- CVE-2025-30439
- CVE-2025-24283
- CVE-2025-24257
- CVE-2024-48958
- CVE-2025-24194
- CVE-2025-31182
- CVE-2025-31199
- CVE-2025-30470
- CVE-2025-24095
- CVE-2025-30466
- CVE-2025-30438
- CVE-2025-24214
- CVE-2025-31184
- CVE-2025-24192
- CVE-2025-24097
- CVE-2025-30454
- CVE-2025-31191
- CVE-2025-24238
- CVE-2025-31183
- CVE-2025-24217
- CVE-2025-30467
- CVE-2025-24167
- CVE-2025-24234
- CVE-2025-24126
- CVE-2025-24129
- CVE-2025-24276
- CVE-2024-40864
- CVE-2025-24272
- CVE-2025-24231
- CVE-2025-24233
- CVE-2025-30443
- CVE-2025-43465
- CVE-2025-30460
- CVE-2025-24236
- CVE-2025-24170
- CVE-2025-24277
- CVE-2025-31189
- CVE-2025-24255
- CVE-2025-24267
- CVE-2025-30456
- CVE-2025-24111
- CVE-2025-30455
- CVE-2025-31187
- CVE-2025-30462
- CVE-2025-24199
- CVE-2025-30431
- CVE-2025-24256
- CVE-2025-24273
- CVE-2025-30464
- CVE-2025-24249
- CVE-2025-24229
- CVE-2025-24235
- CVE-2025-24196
- CVE-2025-24107
- CVE-2025-24148
- CVE-2025-24195
- CVE-2025-31264
- CVE-2025-24172
- CVE-2025-30450
- CVE-2025-24232
- CVE-2025-24246
- CVE-2025-24261
- CVE-2025-24164
- CVE-2025-30446
- CVE-2025-24259
- CVE-2025-30424
- CVE-2025-30452
- CVE-2025-24181
- CVE-2025-24250
- CVE-2025-24280
- CVE-2025-31194
- CVE-2025-30444
- CVE-2025-24228
- CVE-2025-24165
- CVE-2025-24260
- CVE-2025-24254
- CVE-2024-54533
- CVE-2025-31261
- CVE-2025-24207
- CVE-2025-30449
- CVE-2025-24253
- CVE-2025-31188
- CVE-2025-24240
- CVE-2025-24278
- CVE-2025-30457
- CVE-2025-31195
- CVE-2025-24279
- CVE-2025-24247
- CVE-2025-24241
- CVE-2025-24266
- CVE-2025-24265
- CVE-2025-24157
- CVE-2025-31198
- CVE-2025-24202
- CVE-2025-30463
- CVE-2025-30434
- CVE-2025-46308
- CVE-2025-24193
- CVE-2025-30469
- CVE-2025-31192
- CVE-2025-24220
- CVE-2025-30436
- CVE-2025-24208
- CVE-2025-24139
Frequently Asked Questions
1
What is the severity of CVE-2025-30432?
CVE-2025-30432 is classified as a logic issue that may lead to unauthorized passcode attempts on locked devices.
2
How do I fix CVE-2025-30432?
To resolve CVE-2025-30432, update to the latest versions of the affected Apple operating systems: visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4, or macOS Sonoma 14.7.5.
3
What products are affected by CVE-2025-30432?
CVE-2025-30432 affects various Apple products including iPadOS, iPhone OS, macOS, tvOS, and visionOS prior to specific patches.
4
Can CVE-2025-30432 be exploited remotely?
No, CVE-2025-30432 requires local access to the device to attempt passcode entries.
5
How does CVE-2025-30432 impact user security?
CVE-2025-30432 may allow a malicious app to escalate the time for passcode attempts, potentially leading to unauthorized access.